Hello everybody. I have a problem with my firewall rules on my Slackware Linux box 9.0 (kernel 2.4.20-xfs). This system is configured with 3 NIC (one for the router, one for the dmz, and the other for the private net). I have written a firewall (iptables) that is processing packet based also on the incoming interface. This firewall is connected in a not good environment where all the NIC (and the router) are connected to the same switch (don't ask me why). Here is the problem: an incoming packet from the private net sometimes is catched by the priv NIC, sometimes is catched by the DMZ nic and sometimes is catched by router NIC. This happens (I think) because when a client (windoze) sends an arp request with the priv NIC IP, linux replies with the MAC address from any of the 3 NIC and not only with the MAC from the priv NIC. Is there any setting in /proc to prevent this? shared_media perhaps? TIA PS: Please cc me. I'm not receiving messages from this list.
